release notes for nbar2 protocol pack 37.0.0 for cisco ......releasenotesfornbar2protocolpack37.0.0...

of 22 /22
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers Overview, on page 2 Supported Platforms, on page 3 New Protocols in NBAR2 Protocol Pack 37.0.0, on page 4 Updated Protocols in NBAR2 Protocol Pack 37.0.0, on page 10 Deprecated Protocols in NBAR2 Protocol Pack 37.0.0, on page 16 Caveats in NBAR2 Protocol Pack 37.0.0, on page 17 Downloading NBAR2 Protocol Pack 37.0.0, on page 20 Special Notes and Limitations, on page 21 Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers 1

Author: others

Post on 26-Jun-2020

0 views

Category:

Documents


0 download

Embed Size (px)

TRANSCRIPT

  • Release Notes for NBAR2 Protocol Pack 37.0.0for Cisco Wireless Controllers

    • Overview, on page 2• Supported Platforms, on page 3• New Protocols in NBAR2 Protocol Pack 37.0.0, on page 4• Updated Protocols in NBAR2 Protocol Pack 37.0.0, on page 10• Deprecated Protocols in NBAR2 Protocol Pack 37.0.0, on page 16• Caveats in NBAR2 Protocol Pack 37.0.0, on page 17• Downloading NBAR2 Protocol Pack 37.0.0, on page 20• Special Notes and Limitations, on page 21

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers1

  • OverviewThe NBAR2 Protocol Pack 37.0.0 release includes:

    • New protocols

    • Updated protocols

    • Classification improvements

    • Bug fixes

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers2

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersOverview

  • Supported PlatformsNetwork-Based Application Recognition (NBAR2) Protocol Pack 37.0.0 support is provided on the followingCisco Wireless Controller platforms.

    • Cisco 3504 Wireless Controller

    • Cisco 5520 Wireless Controller

    • Cisco 8540 Wireless Controller

    • Cisco Virtual Wireless Controller (vWLC) on the following platforms

    • VMware vSphere Hypervisor (ESXi) Version 5.x and 6.x

    • Hyper-V on Microsoft Servers 2012 and later versions (Support introduced in Release 8.4)

    • Kernel-based virtual machine (KVM) (Support introduced in Release 8.1. After KVM is deployed,we recommend that you do not downgrade to a Cisco Wireless release that is earlier than Release8.1.)

    • Cisco Wireless Controllers for High Availability for Cisco 3504 controller, Cisco 5520 controller, andCisco 8540 controller.

    • Cisco Mobility Express Solution

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers3

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersSupported Platforms

  • New Protocols in NBAR2 Protocol Pack 37.0.0The table below lists the new protocols added in NBAR2 Protocol Pack 37.0.0 (protocols added since 24.0.0).

    Long DescriptionCommon NameProtocol Name

    Tools and APIs used by Adobe applications.Adobe Servicesadobe-services

    Human resources management software and services.Automatic DataProcessing

    adp

    Akamai Technologies, Inc. is an American contentdelivery network (CDN) and cloud services provider. Thecompany operates a network of servers around the worldand rents capacity on these servers to customers who wanttheir websites to work faster by distributing content fromlocations close to the user.

    Akamaiakamai

    Apple Pay is a mobile payment and digital wallet servicefrom Apple, enabling payments by iPhone, AppleWatch,iPad, or Mac.

    Apple Payapple-pay

    Apple Push Notification Service (APNs) is a platformnotification service created by Apple Inc. that enablesthird party application developers to send notification datato applications installed on Apple devices.

    apple-push-notificationApple Push NotificationService

    The Apple Updates service provides updates for Appleplatforms and applications.

    Apple Updatesapple-updates

    Bitcoin is a worldwide cryptocurrency and digital paymentsystem.

    Bitcoinbitcoin

    Box is an online file sharing and content managementservice for businesses.

    Boxbox

    Box is an online file sharing and content managementservice for businesses.

    Boxbox

    BrightTalk professional webinar and video solutions.brighttalkBrightTalk

    Cisco Connected Mobile Experiences (CMX) family ofproducts leverages open-architecture principles,intent-driven workflows, and contextual relevance at thecore of Cisco Digital Network Architecture (DNA).

    Cisco CMXcisco-cmx

    Cisco Collaboration Voice traffic associated with variousCisco Unified Communication clients.

    Cisco CollaborationAudio

    cisco-collaboration-audio

    Cisco Collaboration Video by various Cisco UnifiedCommunication clients.

    Cisco CollaborationVideo

    cisco-collab-video

    Cisco network controller device and SDN solutions.Cisco Controllercisco-controller

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers4

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersNew Protocols in NBAR2 Protocol Pack 37.0.0

  • Long DescriptionCommon NameProtocol Name

    IP SLA (Internet Protocol Service Level Agreement) isan active computer network measurement technology.

    Cisco IP SLAcisco-ip-sla

    Cisco Network Mobility Services Protocol (NMSP)manages communication between the mobility serviceengine and the wireless controller. This includes transportof telemetry, emergency, and RSSI values between themobility service and the controller.

    Cisco NMSPcisco-nmsp

    Control flow of Cisco IP phone.Cisco Phone Controlcisco-phone-control

    Cisco-media is used mainly in corporations and can beused on- or off-site.

    Cisco Phone Mediacisco-phone-media

    Cisco Real-Time Monitoring Tool.Cisco RTMTcisco-rtmt

    Cisco Real-Time Monitoring Tool.Cisco RTMTcisco-rtmt

    Network-level component of Cisco AVC that providesservices to participating devices in a network.

    Cisco software-definedAVC

    cisco-sd-avc

    Cisco Smart Probes help collect performance metricswhen there is no actual user traffic.

    Cisco Smart Probecisco-smart-probe

    Cisco Spark Audio - Audio of unified communicationsclient and SaaS with mobile team communication: groupchat, private chat, video calls with screen sharing and filesharing.

    Cisco Spark Audiocisco-spark-audio

    Cisco Spark Media - Media of unified communicationsclient and SaaS with mobile team communication: groupchat, private chat, video calls with screen sharing and filesharing.

    Cisco Spark Mediacisco-spark-media

    Cisco Spark Video - Video of unified communicationsclient and SaaS with mobile team communication: groupchat, private chat, video calls with screen sharing and filesharing

    Cisco Spark Videocisco-spark-video

    Cisco corporate TV, with interactive web streaming, andlive studio shows.

    Cisco TVcisco-tv

    Cable News Network (CNN) is an American basic cableand satellite television news channel.

    cnnCNN

    Concur SaaS travel and expense management services forbusinesses.

    Concurconcur

    Audio-Video Conferencing and Collaboration Solutions.conferencingconferencing

    Cloud-based e-commerce platform and related servicesfor retailers and manufacturers.

    Demandwaredemandware

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers5

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersNew Protocols in NBAR2 Protocol Pack 37.0.0

  • Long DescriptionCommon NameProtocol Name

    Facebook audio streaming services.Facebook AudioStreaming

    facebook-audio

    Facebook media streaming services.Facebook MediaStreaming

    facebook-media

    Facebook video streaming services.Facebook VideoStreaming

    facebook-video

    Google downloads and Google application updates.Google DownloadsServices

    google-downloads

    Audio streaming related to various Google services, APIs,and collaboration software.

    Google Services Audiogoogle-services-audio

    Media streaming related to various Google services, APIs,and collaboration software.

    Google Services Mediagoogle-services-media

    Media streaming related to various Google services, APIs,and collaboration software.

    Google Services Videogoogle-services-video

    GoToMeeting is a web-hosted service for onlinemeeting,desktop sharing, and video conferencing that enables usersto meet with other computer users, customers, clients, orcolleagues via internet in real time.

    gotomeetingGoToMeeting

    Gyao is a video site operated by Yahoo Japan.gyaoGyao

    H.225 is part of the H.323 family of telecommunicationprotocols, used for call signaling and control.

    h225H.225

    H.245 is a control channel protocol used within H.323and H.324 communication sessions, and involves the linetransmission of non-telephone signals.

    h245H.245

    Google Hangouts is a communication platform developedby Google, which includes instant messaging, video chat,SMS, and VOIP features.

    Hangoutshangouts

    Google Hangouts audio.Hangouts Audiohangouts-audio

    Google Hangouts chat.Hangouts Chathangouts-chat

    Google Hangouts file transfer.Hangouts File Transferhangouts-file-transfer

    Google Hangouts media.Hangouts Mediahangouts-media

    Google Hangouts video.Hangouts Videohangouts-video

    Software products and services for inbound marketingand sales, including tools for social media marketing,content management, web analytics, and search engineoptimization.

    HubSpothubspot

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers6

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersNew Protocols in NBAR2 Protocol Pack 37.0.0

  • Long DescriptionCommon NameProtocol Name

    Institut Studio Francais, an institution teaching the Frenchlanguage. Offers online private French courses.

    Institut-SFinstitut-sf

    iPass allow users to connect millions of hotspots aroundthe world.

    iPassipass

    Media streaming for iTunes media player and medialibrary application.

    iTunes Mediaitunes-media

    Issue tracking product by Atlassian.Jirajira

    Communication and collaboration solutions for business.Jive Softwarejive-software

    Lifesize is a video and audio telecommunications companyproviding high definition videoconferencing endpointsand accessories, touchscreen conference room phones,and a cloud-based video collaboration platform.

    Lifesizelifesize

    Corporate marketing automation software.Marketomarketo

    McAfee Antivirus and security.McAfee Antivirusmcafee-antivirus

    Skype for Business (formerly Microsoft Lync) is acommunications and collaboration platform that bringstogether an experience inspired by Skype withenterprise-grade security, compliance, and control.

    Features include presence, IM, voice and video calls, andonline meetings. Because it is built intoMicrosoft Office,initiating chats, calls, and meetings is an integratedexperience within Office.

    Skype for Business(MS-Lync) Control

    ms-lync-control

    Cloud-based software services for managing businessfinancials, operations, and customer relations.

    Netsuitenetsuite

    Oracle database software and technology, databasemanagement, cloud-engineered systems, and enterprisesoftware.

    Oracleoracle

    Cloud-based communications and collaboration solutionsfor businesses.

    RingCentralringcentral

    SCCP User Adaptation (SUA) provides an SCTPadaptation layer for the seamless backhaul or peering ofSignalling Connection Control Part user messages andservice interface across an IP network.

    sccp-user-adaptationSCCP User Adaptation

    Enterprise cloud computing services and IT servicemanagement.

    ServiceNowservicenow

    Enterprise cloud computing services and IT servicemanagement.

    ServiceNowservicenow

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers7

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersNew Protocols in NBAR2 Protocol Pack 37.0.0

  • Long DescriptionCommon NameProtocol Name

    Oracle Social CRM combines traditional enterprise CRMcapabilities with social networking and Web 2.0technologies. The applications are designed to reflect theway sales people work by helping them identify qualifiedleads, develop sales campaigns, and collaborate withcolleagues.

    siebel-crmSiebel CRM

    Siri is a personal voice assistant. It uses a natural languageuser interface to answer questions, makerecommendations, and perform actions by delegatingrequests to a set of web services.

    Sirisiri

    SourceForge, web-based open source applicationrepository and software directory.

    SourceForgesourceforge

    Splunk is a platform for collecting and analyzingmachine-generated big data in an enterprise ITenvironment

    Splunksplunk

    Spotify is a commercial music streaming service providingdigital rights management (DRM)-restricted content fromrecord labels, including Sony, EMI,WarnerMusic Groupand Universal. Users can browse for music, or search byartist, album, genre, playlist, or record label. Paid"Premium" subscriptions remove advertisements and allowusers to download music to listen offline.

    spotifySpotify

    The SQLI (StructuredQuery Language Interface) protocolis a proprietary protocol used by IBM Informix servers.

    sqliSQLI

    SugarCRM is a Cupertino, California-based company thatproduces the web application, Sugar, a customerrelationship management (CRM) system.

    SugarCRMsugarcrm

    Telepresence Voice.Telepresence Audiotelepresence-audio

    Linux traceroute command, which provides informationabout routes to a network host.

    Traceroute Linuxtraceroute-linux

    TusFiles is a cloud storage provider for online hostingand sharing of files.

    TusFilestus-files

    Vimeo is a video-sharing website in which users canupload, share, and view videos.

    vimeoVimeo

    Web and mobile analytics, and customer engagementplatforms.

    Web Analyticsweb-analytics

    WebRTC provides browsers andmobile applications withReal-Time Communications (RTC) capabilities.

    WebRTCweb-rtc

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers8

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersNew Protocols in NBAR2 Protocol Pack 37.0.0

  • Long DescriptionCommon NameProtocol Name

    WebRTC provides browsers andmobile applications withReal-Time Communications (RTC) capabilities.

    WebRTC Audioweb-rtc-audio

    WebRTC provides browsers andmobile applications withReal-Time Communications (RTC) capabilities.

    WebRTC Videoweb-rtc-video

    WeChat is a mobile text and voice messagingcommunication service. The app is available on Android,iPhone, BlackBerry, Windows Phone and Symbianphones.

    WeChatwechat

    Cloud-based on-demand financialmanagement and humancapital management software.

    Workdayworkday

    Information technology and business managementservices, including CRM, mail, reports, meetings, chat,docs, wiki, recruiting, invoice, surveys, and more.

    Zoho Serviceszoho-services

    Enterprise video conferencing and web conferencing.Zoom Meetingszoom-meetings

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers9

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersNew Protocols in NBAR2 Protocol Pack 37.0.0

  • Updated Protocols in NBAR2 Protocol Pack 37.0.0The following table lists the protocols updated to improve classification in NBAR2 Protocol Pack 37.0.0.0since Protocol Pack 24.0.0.0.

    UpdatesProtocol

    Updated signaturesamazon-web-services

    Updated signaturescifs

    Updated signaturescisco-collaboration

    Updated signaturescisco-jabber-control

    Updated signatures, changed attributescisco-phone

    Changed attributescisco-phone-media

    Changed attributescisco-phone-video

    Updated signaturescisco-spark

    Updated signaturesconference-server

    Updated signaturesconferencing

    Updated signaturesconnected-backup

    Updated signaturescrashplan

    Updated signaturesgoogle-services

    Updated signatureshttp

    Updated signaturesicloud

    Updated signatureskerberos

    Updated signaturesldap

    Updated signaturesmongo

    Updated signaturesms-office-365

    Updated signaturesms-office-web-apps

    Updated signaturesms-services

    Updated signaturesms-wbt

    Updated signaturesmysql

    Updated signaturesntp

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers10

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersUpdated Protocols in NBAR2 Protocol Pack 37.0.0

  • UpdatesProtocol

    Updated signaturesoracle-sqlnet

    Updated signaturesoutlook-web services

    Updated signaturesperforce

    Updated signaturesrtcp

    Updated signaturesrtcp

    Updated signaturesrtp

    Updated signaturesrtp-audio

    Updated signaturesrtp-video

    Updated signaturessip

    Updated signaturessqlserver

    Updated signaturesssl

    Updated signaturestcpoverdns

    Updated signaturestelepresence-audio

    Updated signaturestelepresence-control

    Updated signaturestelepresence-media

    Updated signaturestelnet

    Updated signaturestftp

    Updated signaturesvmware-vsphere

    Updated signaturesvnc

    Updated signatureswebex-meeting

    Updated signatureswifi-calling

    Updated signaturesAcano

    Updated signaturesMicrosoft SMS

    Updated signaturesCisco Spark

    Updated attributeapple-services

    Updated attributeat-3

    Updated attributeat-5

    Updated attributeapple-services

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers11

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersUpdated Protocols in NBAR2 Protocol Pack 37.0.0

  • UpdatesProtocol

    Updated attributeat-3

    Updated attributeat-5

    Updated attributeat-7

    Updated attributeat-8

    Updated attributeavast-antivirus

    Updated attributeayiya-ipv6-tunneled

    Updated attributecapwap-data

    Updated attributecheckpoint-cpmi

    Updated attributeconference-server

    Updated attributecorba-iiop-ssl

    Updated attributecorba-iiop-ssl

    Updated attributedicom

    Updated attributedwr

    Updated attributefacebook-audio

    Updated attributefacebook-media

    Updated attributefacebook-video

    Updated attributefasttrack-static

    Updated attributefix

    Updated attributegbridge

    Updated attributegoogle-earth

    Updated attributegotodevice

    Updated attributegotomypc

    Updated attributehl7

    Updated attributehotmail

    Updated attributeidpr

    Updated attributeidrp

    Updated attributeigrp

    Updated attributeipass

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers12

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersUpdated Protocols in NBAR2 Protocol Pack 37.0.0

  • UpdatesProtocol

    Updated attributeipfix

    Updated attributeipsec

    Updated attributeipv6-icmp

    Updated attributeisatap-ipv6-tunneled

    Updated attributekakao-services

    Updated attributel2tp

    Updated attributelogmein

    Updated attributemail-ru

    Updated attributemcafee-antivirus

    Updated attributemfcobol

    Updated attributenetflow

    Updated attributenetflow

    Updated attributenntp

    Updated attributensiiops

    Updated attributeopenvpn

    Updated attributeorbix-cfg-ssl

    Updated attributeoscp

    Updated attributepcanywhere

    Updated attributepearson

    Updated attributepim

    Updated attributepnni

    Updated attributepptp

    Updated attributeqq-services

    Updated attributersync

    Updated attributesdrp

    Updated attributesecure-nntp

    Updated attributeshowmypc

    Updated attributesixtofour-ipv6-tunneled

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers13

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersUpdated Protocols in NBAR2 Protocol Pack 37.0.0

  • UpdatesProtocol

    Updated attributesocks

    Updated attributestun-nat

    Updated attributesynergy

    Updated attributetcpoverdns

    Updated attributeteredo-ipv6-tunneled

    Updated attributetinc

    Updated attributeactivesync

    Updated attributeandroid-updates

    Updated attributeapple-app-store

    Updated attributeapple-ios-updates

    Updated attributeapple-pay

    Updated attributeavast-antivirus

    Updated attributecifs

    Updated attributefix

    Updated attributegoogle-downloads

    Updated attributegoogle-play

    Updated attributegridftp

    Updated attributegsiftp

    Updated attributehangouts

    Updated attributehangouts-audio

    Updated attributehangouts-chat

    Updated attributehangouts-file-transfer

    Updated attributehangouts-media

    Updated attributehangouts-video

    Updated attributemac-os-x-updates

    Updated attributemcafee-antivirus

    Updated attributemicrosoftds

    Updated attributems-sms

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers14

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersUpdated Protocols in NBAR2 Protocol Pack 37.0.0

  • UpdatesProtocol

    Updated attributems-update

    Updated attributenfs

    Updated attributesiri

    Updated attributesplunk

    Updated attributesst

    Updated attributetftp

    Updated attributetunnel-http

    Updated attributevmpwscs

    Updated attributewindows-store

    Updated attributexmpp-client

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers15

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersUpdated Protocols in NBAR2 Protocol Pack 37.0.0

  • Deprecated Protocols in NBAR2 Protocol Pack 37.0.0The following table lists the caveats deprecated in NBAR2 Protocol Pack 37.0.0 (since 24.0.0):

    Table 1: Deprecated Protocols

    NBAR2 Protocols DeprecatedDescriptionApplication

    aol-messenger

    aol-messenger-audio

    aol-messenger-video

    AOL Instant Messenger.aol-messenger

    fring

    fring-video

    fring-voip

    Mobile VOIP application.

    http://www.fring.com/faq.html

    fring

    gbridgeRemote access software, no longersupported.

    gbridge

    pcanywhereRemote access software, standaloneversion EOL.

    https://www.symantec.com/connect/blogs/pcanywhere-eol

    pcanywhere

    streamworkSAP StreamWork service(enterprise collaboration tool)discontinued.

    https://archive.sap.com/documents/docs/DOC-69293

    streamwork

    mcafee-updateUpdate client of McAfee computersecurity software.

    Traffic will be classified as"mcafee-antivirus".

    mcafee-update

    netshowMicrosoft media streamingprotocol, replaced by “windowsmedia” and “media foundation”.

    netshow

    songsariCommercial media distributionwebsite.

    songsari

    vdoliveDefunct real time video/audiostreaming and broadcasting player.

    vdolive

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers16

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersDeprecated Protocols in NBAR2 Protocol Pack 37.0.0

    http://www.fring.com/faq.htmlhttps://www.symantec.com/connect/blogs/pcanywhere-eolhttps://archive.sap.com/documents/docs/DOC-69293

  • Caveats in NBAR2 Protocol Pack 37.0.0

    If you have an account on Cisco.com, you can view information on select caveats, using the Bug Search Tool(https://tools.cisco.com/bugsearch/search).

    Note

    Open Caveats in NBAR2 Protocol Pack 37.0.0

    The following table lists the caveats open in NBAR2 Protocol Pack 37.0.0 (since 24.0.0):

    DescriptionCaveat ID Number

    PCoIP session-priority configuration limitation.CSCuh49380

    Segmented packets are not classified when using NBAR sub classification.CSCuh53623

    IPv4 bundles might be used in IPv6 traffic.CSCun61772

    Caveats Resolved in NBAR2 Protocol Pack 37.0.0

    The following table lists the caveats resolved in NBAR2 Protocol Pack 37.0.0 (since 24.0.0):

    DescriptionCaveat ID Number

    DNS parser skips on additional records which include valid A and AAA.CSCuz03729

    NBAR does not classify SIP voice traffic properlyCSCuz38621

    Missing host for icloud-content.comsCSCuz51687

    Different classification between coarse-grain and fine-grain granularity.CSCva08934

    SIP traffic port 5061 is classified as unknown.CSCva18641

    IMAP protocol does not receive final classification.CSCva23181

    Socket cache entry causes YouTube classification.CSCva26298

    NBAR attributes are not supported for static protocols.CSCva30089

    The NBAR2 custom protocol feature may not operate correctly because the valuesof the business-relevance and traffic-class attributes for a new customized protocolmay be inappropriate for the targeted application traffic. The values may beinappropriate either by default or following assignment of attribute values by theattribute-map CLI command. Incorrect values for these attributes may cause thetargeted traffic to be assigned to an incorrect class map.

    The bug fix ensures that the business-relevance and traffic-class attributes areconfigured according to their usual default values, and enables users to overridethe values if necessary using the attribute-map CLI..

    CSCva46618

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers17

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersCaveats in NBAR2 Protocol Pack 37.0.0

    https://tools.cisco.com/bugsearch/searchhttps://tools.cisco.com/bugsearch/bug/CSCuh49380https://tools.cisco.com/bugsearch/bug/CSCuh53623https://tools.cisco.com/bugsearch/bug/CSCun61772https://tools.cisco.com/bugsearch/bug/CSCuz03729https://tools.cisco.com/bugsearch/bug/CSCuz38621https://tools.cisco.com/bugsearch/bug/CSCuz51687https://tools.cisco.com/bugsearch/bug/CSCva08934https://tools.cisco.com/bugsearch/bug/CSCva18641https://tools.cisco.com/bugsearch/bug/CSCva23181https://tools.cisco.com/bugsearch/bug/CSCva26298https://tools.cisco.com/bugsearch/bug/CSCva30089https://tools.cisco.com/bugsearch/bug/CSCva46618

  • DescriptionCaveat ID Number

    mySQL port 3306 traffic is classified as unknown.CSCva65247

    vSphere traffic classification gaps.CSCvb41876

    Gaps in audio/video separation in SIPCSCvb71391

    NBAR2 fails to classify Microsoft Remote-Desktop traffic over UDPCSCvb72937

    Fixing rtcp multiplexing in rtp flow.CSCvb99174

    ssl-local-net traffic misclassified as SSL.CSCvc09665

    Inaccurate category assignments of some protocols in NBAR2CSCvc36786

    IKEv2 traffic may be misclassified as unknown/Skype.CSCvc39224

    Cisco Jabber audio misclassified to video.CSCvc65160

    Unable to upgrade Protocol Pack from 14 to 27 with "secure-http" app class map.CSCvc76760

    Syslog misclassified as DNSCSCvc82781

    RTP misclassification as statistical-downloadCSCvc97492

    telepresence-control misclassified as SIPCSCvc97503

    Missing Amazon hosts.CSCvc97603

    Microsoft-Services missing hosts.CSCvc97867

    Gmail missing hosts.CSCvc99541

    Google-Services missing hosts.CSCvc99545

    Telepresence miss classification over DTLS.CSCvd14579

    eDonkey false positive classification.CSCvd24565

    Google-Services granularity loss due to incompatible socket-cache post handlers.CSCvd42157

    Application name is classified as a number.CSCvd45011

    Jabber over xmpp client - caching server but not classifying as JabberCSCvd45680

    SIP field extraction may cause SIP parsing misses.CSCvd60686

    Engine loops due to duplicated fields in HTTP or SSL packets.CSCvd90446

    WLC AVC not classifying jabber audio trafficCSCve43732

    IPSec traffic may be classified as 'unknown' by NBARCSCve47576

    NBAR incorrectly classifies RTP-AUDIO as Cisco-JabberCSCvf14771

    NBAR incorrectly classifies RTP-AUDIO as Cisco-JabberCSCvf14771

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers18

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersCaveats in NBAR2 Protocol Pack 37.0.0

    https://tools.cisco.com/bugsearch/bug/CSCva65247https://tools.cisco.com/bugsearch/bug/CSCvb41876https://tools.cisco.com/bugsearch/bug/CSCvb71391https://tools.cisco.com/bugsearch/bug/CSCvb72937https://tools.cisco.com/bugsearch/bug/CSCvb99174https://tools.cisco.com/bugsearch/bug/CSCvc09665https://tools.cisco.com/bugsearch/bug/CSCvc36786https://tools.cisco.com/bugsearch/bug/CSCvc39224https://tools.cisco.com/bugsearch/bug/CSCvc65160https://tools.cisco.com/bugsearch/bug/CSCvc76760https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvc82781https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvc97492https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvc97503https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvc97603https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvc97867https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvc99541https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvc99545https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvd14579https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvd24565https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvd42157https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvd45011https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvd45680https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvd60686https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvd90446https://bst.cloudapps.cisco.com/bugsearch/bug/CSCve43732https://bst.cloudapps.cisco.com/bugsearch/bug/CSCve47576https://bst.cloudapps.cisco.com/bugsearch/bug/cscvf14771https://bst.cloudapps.cisco.com/bugsearch/bug/cscvf14771

  • DescriptionCaveat ID Number

    NBAR not classifying Citrix traffic when Citrix tags are used.CSCvf38142

    NBAR not classifying Citrix traffic when Citrix tags are used.CSCvf38142

    NBAR should support DNS packets with some of the 'Z' reserved bits turned on.

    Relevant only when using Cisco IOS XE Denali 16.3.2.Note

    CSCvf90928

    NBAR upgrade modifies class-map configurationCSCvg67293

    NBAR upgrade modifies class-map configuration

    Relevant only when using Cisco IOS XE Denali 16.3.2.Note

    CSCvg67293

    Warning message while installing NBAR Protocol Pack 34.0.0 on non-ASRplatforms.

    Resolved in Protocol Pack 35.0.0.Note

    CSCvh15322

    Warning message while installing NBAR Protocol Pack 34.0.0.CSCvh15322

    Facebook traffic misclassification for facebook-zero protocolCSCvi10250

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers19

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersCaveats in NBAR2 Protocol Pack 37.0.0

    https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvf38142https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvf38142https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvf90928https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvg67293https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvg67293https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvh15322https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvh15322https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvi10250

  • Downloading NBAR2 Protocol Pack 37.0.0NBAR2 Protocol Packs are available for download on the Cisco.com software download page(http://www.cisco.com/cisco/software/navigator.html). On the download page, specify a platform model todisplay software available for download. One software option will be NBAR2 Protocol Packs.

    Example

    To display protocol packs available for the Cisco Wireless Controllers platform, the navigation path is:

    Download Software > Enter the Controller model > NBAR2 Protocol Pack

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers20

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersDownloading NBAR2 Protocol Pack 37.0.0

    http://www.cisco.com/cisco/software/navigator.html

  • Special Notes and LimitationsSpecial Note or LimitationProtocol Name

    Login and a few encrypted sessions are classified as iTunes.apple-app-store

    HTTP traffic generated by the bitcomet bittorrent client might be classifiedas HTTP.

    bittorrent

    For capwap-data to be classified correctly, capwap-control must also beenabled.

    capwap-data

    During configuring QoS class-map with ftp-data, the FTP protocol mustbe selected. As an alternative, the FTP application group can be selected.

    ftp

    Encrypted video streaming generated by hulu may be classified as itsunderlying protocol rtmpe.

    hulu

    Traffic generated by the logmein android app may be classified incorrectlyas ssl.

    logmein

    Login and chat traffic generated by the ms-lync client may be classifiedincorrectly as ssl.

    ms-lync

    Traffic generated by pcanywhere for mac may be classified as unknown.pcanywhere

    Some perfect-dark sessions may be classified as unknown.perfect-dark

    Login to QQ applications which is not via the internet may not be classifiedas qq-accounts.

    qq-accounts

    The Sub Classification (SC) mechanism was modified to include searchfor wildcard.

    The SC rule for the part of the Server Name Indication (SNI) orthe common name (CN) can now include a wildcard. If awildcard is not used, the complete SNI or the CN is required.

    For example, you can either use, "*.pqr.com" or "abc.pqr.com"to classify abc.pqr.com.

    Note

    ssl

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers21

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersSpecial Notes and Limitations

  • Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers22

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersSpecial Notes and Limitations

    Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersOverviewSupported PlatformsNew Protocols in NBAR2 Protocol Pack 37.0.0Updated Protocols in NBAR2 Protocol Pack 37.0.0Deprecated Protocols in NBAR2 Protocol Pack 37.0.0Caveats in NBAR2 Protocol Pack 37.0.0Downloading NBAR2 Protocol Pack 37.0.0Special Notes and Limitations